Founded in 2011 and headquartered in Herndon, Virginia, GuidePoint Security furnishes commercial and federal organizations with customized information security
Senior Application Security Engineer – Southeast Region
Location
United States
Posted
3 days ago
Salary
0
Seniority
Senior
Job Description
Senior Application Security Engineer – Southeast Region
GuidePoint Security
• Leading AppSec program assessments to evaluate current state, identify gaps, and help clients prioritize remediation efforts based on risk, resources, and organizational readiness • Designing pragmatic security workflows, processes, tooling integrations, and developer friendly practices that engineering teams will actually adopt • Getting hands-on when needed: implementing SAST/SCA/DAST/API tooling, configuring CI/CD security gates, building threat models, and conducting architecture reviews • Navigating organizational complexity by helping clients work through the messy middle: tool sprawl, low adoption rates, competing priorities, technical debt, and cross-functional alignment challenges • Delivering polished client work, producing clear assessments, actionable roadmaps, implementation guides, and executive communications that drive decision-making • Serving as a strategic advisor and hands-on partner, adapting your approach to each client’s culture, maturity, and goals
Job Requirements
- 5+ years in application security, with demonstrated experience building, scaling, or leading an AppSec program
- Proficiency with the implementation, operationalization, and troubleshooting of tools across the AppSec landscape (SAST, DAST, SCA, API Security, secrets management)
- Comfortable operating at the strategic level (program design, roadmaps, risk prioritization) and the tactical level (hands-on implementation, tool configuration, code review)
- Strong working knowledge of Secure Development Lifecycles and experience triaging and remediating technical vulnerabilities identified by web application scanning tools
- Excellent written and verbal communication skills (you can translate technical findings into business risk for executives, and explain security requirements to developers)
Benefits
- Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options)
- Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
- 12 corporate holidays and a Flexible Time Off (FTO) program
- Healthy mobile phone and home internet allowance
- Eligibility for retirement plan after 2 months at open enrollment
- Pet Benefit Option
Related Guides
Related Categories
Related Job Pages
More Application Engineer Jobs
Application Change Management Engineer
PantheonPantheon is a website operations platform for Drupal and WordPress that allows organizations to manage their websites from a single dashboard. Launched in 2010,
Role Description O(A) Engenheiro(a) de Sistemas de Gerenciamento de Mudanças de Aplicativos será responsável por garantir a integridade dos sistemas e coordenar, junto às demais equipes globais de suporte de TI, todas as atividades relacionadas ao gerenciamento de mudanças em ambientes corporativos complexos, com foco principal em sistemas SAP. Esta posição possui papel estratégico na governança de mudanças, assegurando que todas as alterações sejam planejadas, controladas, implementadas e monitoradas de acordo com os processos estabelecidos, garantindo a estabilidade, disponibilidade e conformidade dos ambientes produtivos. O profissional atuará em um ambiente global, colaborando com equipes técnicas, funcionais e de projetos distribuídas em diferentes regiões, suportando operações críticas e processos de mudança em larga escala. Qualifications - Experiência em gerenciamento de mudanças de aplicações e governança de ambientes corporativos complexos. - Vivência em ambientes SAP de grande porte. - Experiência com controle, planejamento e execução de transportes e mudanças em múltiplos ambientes. - Experiência atuando em equipes globais e ambientes multiculturais. - Vivência em processos de suporte operacional e gerenciamento de incidentes relacionados a mudanças. Requirements - Conhecimentos Obrigatórios: - SAP Solution Manager (ChaRM e Focused Build) - SAP Transport Management System (STMS) - SAP (conhecimento geral) - ServiceNow (conhecimento geral) - Microsoft Office - SharePoint - Conhecimentos Desejáveis: - LiveCompare - SAP BASIS - Desenvolvimento ServiceNow - Experiência com desenvolvimento de scripts - Competências Comportamentais: - Forte orientação para excelência operacional e funcional. - Compromisso com qualidade e produtividade. - Conhecimento e aderência às metodologias ágeis. - Consciência e sensibilidade em relação à segurança da informação e confidencialidade. - Capacidade de adaptação a mudanças de prioridade e prazos. - Excelentes habilidades de comunicação verbal e escrita. - Inglês fluente para comunicação em ambiente global. - Forte capacidade analítica e de interpretação de cenários complexos. - Facilidade para trabalhar em equipe e coordenar atividades entre múltiplos stakeholders. - Senso de responsabilidade, comprometimento e ownership. - Perfil proativo, inovador e orientado à solução de problemas. - Orientação para atendimento ao cliente e qualidade de serviço. - Capacidade de tomada de decisão baseada em análise e impacto no negócio. - Boa organização e gestão das próprias atividades. - Habilidade para atuar sob pressão em ambientes críticos e de alta disponibilidade. Benefits - Fornecer suporte ao processo global de gerenciamento de mudanças (Follow The Sun – FTS) para ambientes SAP. - Coordenar atividades relacionadas a congelamento de mudanças (Change Freeze), janelas de migração para produção, atualizações SAP e renovações de sistemas. - Utilizar SAP Solution Manager, SAP Change Request Management (ChaRM), Focused Build e SAP Transport Management System (STMS) para movimentação e controle de mudanças em mais de 30 ambientes de três camadas, além de ambientes N+1. - Atuar como membro de uma equipe global utilizando metodologia AGILE. - Implementar e manter controles e práticas de gerenciamento de mudanças para garantir a integridade, estabilidade e disponibilidade dos sistemas SAP. - Investigar e solucionar incidentes e problemas relacionados ao gerenciamento de mudanças em todos os ambientes SAP. - Realizar comunicação diária com equipes técnicas, funcionais e de processos em âmbito global. - Identificar oportunidades de melhoria contínua para aumentar a eficiência operacional e a qualidade do suporte prestado. - Atuar como principal ponto de contato entre equipes de negócio, equipes técnicas e equipes de projeto para planejamento e agendamento de mudanças. - Apoiar iniciativas de gerenciamento de mudanças relacionadas a projetos e demandas operacionais. - Participar de atividades de suporte fora do horário comercial, conforme escala de plantão global, incluindo suporte limitado em finais de semana quando necessário. - Participar dos processos de Recuperação de Desastres (Disaster Recovery). Company Description Buscamos profissionais com sólida experiência em gerenciamento de mudanças e governança de ambientes SAP, capazes de atuar em um contexto global, altamente colaborativo e orientado à estabilidade operacional. O profissional deverá possuir forte capacidade de coordenação, comunicação e análise, garantindo que todas as mudanças ocorram de forma controlada, segura e alinhada às necessidades do negócio.
Application Engineer
EXLWe make sense of data to drive your business forward. #MakeSenseofData #DriveYourBusinessForward #PartnerYourWay
• Design, develop, and support enterprise-grade applications using .NET, .NET Core, and Python, ensuring scalability, maintainability, and performance. • Define and implement robust application architecture patterns aligned with business, security, and operational requirements. • Lead the design of modern data architectures, including relational databases, NoSQL/document stores, star schemas, data lakes, and streaming data pipelines. • Translate business and technical requirements into end-to-end solution designs that integrate application, data, and infrastructure components effectively. • Provide guidance on infrastructure topologies for both on-premises and cloud-based environments, including virtual machines, containers, Kubernetes/AKS, and Azure-native services. • Drive adoption of strong SDLC and DevOps practices, including CI/CD, code quality controls, release automation, environment management, and agile delivery methodologies. • Collaborate with cross-functional teams including business stakeholders, architects, developers, data engineers, and operations teams to deliver high-quality technology solutions. • Ensure solutions are designed with appropriate focus on resilience, scalability, security, and operational efficiency. • Troubleshoot complex technical issues across application, data, and infrastructure layers, and provide practical resolution approaches. • Work effectively in high-pressure environments, managing multiple priorities while maintaining delivery quality and timeliness. • Leverage industry knowledge to align technology solutions with insurance domain requirements, processes, and business objectives.
Application Security Engineer
Greenlight PlanetPowering access to brighter lives in Africa, Asia, and beyond
• Own Application security responsibility for assigned business functions by performing threat modeling, architecture reviews, penetration testing, secure coding programs, and vulnerability management. • Perform manual penetration testing and vulnerability assessments on web applications, APIs, and android mobile applications • Perform security reviews for AI‑native products, models, pipelines, and inference services. • Onboard applications into the SSDLC program and be a security point of contact for the application product. • Own security incident response for product-layer issues, define remediation plans, and track fixes through to closure • Integrate and tune SAST/DAST/IAST/SCA tools in CI/CD, create custom rules where needed and actively triage false positives. • Review and harden cloud infrastructure — Kubernetes RBAC, pod security, network policies, Istio service mesh, Keycloak/OIDC configurations, and IAM across AWS, DigitalOcean, GCP, and Firebase • Communicate vulnerabilities and risk clearly to developers, product managers, and leadership — in language that drives actionable results • Conduct Application security trainings for engineers, product managers etc
• Configure and maintain software platforms to meet client and organisational requirements. • Set up workflows, forms, business rules, user permissions, security roles, and system settings. • Support software implementations, upgrades, and enhancement initiatives. • Perform testing and validation of configuration changes. • Maintain accurate system documentation and configuration records. • Provide application support through a range of support channels. • Investigate, troubleshoot, and resolve application-related issues. • Collaborate with software vendors and internal teams to resolve complex technical challenges. • Monitor support requests and ensure timely, professional resolution. • Maintain accurate records of support activities and outcomes. • Deliver training programs for end users, administrators, and management teams. • Develop user guides, training resources, and knowledge base content. • Support organisations in improving software adoption and user engagement. • Conduct onboarding sessions and refresher training where required. • Translate technical concepts into practical, user-friendly guidance. • Work with clients to understand existing business processes and operational challenges. • Identify opportunities to improve efficiency through technology and automation. • Recommend best-practice solutions and system enhancements. • Help organisations maximise the value of their technology investments. • Develop expertise across multiple software platforms used within the aged care and community services sectors. • Stay current with industry developments, software updates, and emerging technologies. • Participate in ongoing professional development and certification opportunities.
